Microsoft Teams security flaw lets hackers steal accounts — and there’s no solution in sight

Researchers have claimed that a vulnerability in Microsoft Teams allows threat actors to log into other people’s accounts, even if those accounts are protected by multi-factor authentication.

Cybersecurity analysts from Vectra say the Teams desktop app for Windows, Linux and Mac stores user authentication codes in clear text, without any access locks. Anyone with local access to a system with Teams installed can steal these tokens and use them to sign in to accounts.

Source link

Write a Reply or Comment

Your email address will not be published. Required fields are marked *